mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions
apparmor/kernel-patches/v4.14
History
John Johansen 547708bc99 Update base network mediation patch with missing feature pinning fixup 
apparmor: fix regression in network mediation when using feature pinning

When the 4.14-rc6 and earlier kernels are used with an upstream 4.13
or earlier pinned feature set, there is a regression in network
mediation where policy is not being correctly enforced, because the
compilation is completely dropping the af mediation table as expected
by pre 4.14 kernels but the 4.14 kernel is not accounting for this.

Resulting in network denials that can not be fixed by policy.

Signed-off-by: John Johansen <john.johansen@canonical.com>
2018-02-01 09:43:37 +01:00
..
0001-apparmor-add-base-infastructure-for-socket-mediation.patch Update base network mediation patch with missing feature pinning fixup 2018-02-01 09:43:37 +01:00
0002-apparmor-af_unix-mediation.patch Update base network mediation patch with missing feature pinning fixup 2018-02-01 09:43:37 +01:00
README add final kernel patches for 4.14 and 4.15 2018-02-01 08:27:19 +01:00

README 

This is based on v4.14 final

base socket mediation and af_unix-mediation are the last two remaining
patches that are out of tree